firewall match against DSCP (TOS) field
I'd like to write firewall rules (both regular firewall rules and modify rules) that match against the DSCP (TOS) field in an IP packet. iptables supports this, but this doesn't seem to be exposed via...
View ArticleERL, cannot acces UI or SSH
After a power failure, my Edge Router Lite3 (1.8.0) boots, works for routing (gives internet to local LAN) but I cannot access it's UI or connect to it by SSH. Is it possible to solve this without...
View ArticleSite to Site Tunnel
I'm looking for a solution to the following problem; I have 5 EdgeRouter Lites, and 1 single EdgeRouter ER-8.Each ER-Lite has a single computer sitting behind it, connected to a third-parties internet....
View ArticleBig thank you for 1.8.5
I just upgraded and the speed issue we were seeing where uploads were very slow compared to our capable speed completely went away. Just wanted to say thank you for all of the hard work!
View ArticleER-X Traffic Shape Help need
Hello, I recently was helped to setup a Vlan on a ER-X.I setup Vlan100 and Vlan200. Vlan100 is on eth1 and Vlan200 is on eth2, and both trunks to eth4. ER-X local...
View ArticleVOIP QoS with VLANs is affecting all traffic
Here is my setup EdgeRouter 8-Pro 1.8.0eth0eth0.5 VOICE VLANeth0.10 SERVERSeth0.50 COMPUTERS/LAPTOPSeth1 WAN 10mb/10mb I applied following configurtion taken and it seems to work too well because all...
View Article1.8.5 possible IPSEC with AES-GCM bug?
I was trying to enable AES-GCM on an IPSec connection between an Edgerouter Lite and a Juniper SRX210.It looks like the ERL is proposing HMAC-SHA1 or HMAC-SHA384-192 authentication, depending on...
View ArticleNeed help with 1000mbit/s settings ERL
Hi So today, I'm finally gonna get fiber. I'll be make the move from 30mbit/s copper to 1000mbit/s fiber.Since the router I was going to get from the ISP is a POS I opted to buy the Edgerouter Lite...
View ArticleSimple QoS configuration problem
can someone verify this config before I apply it to my edge routerI am trying to set admin at 40% vlan 20 and 50 resident at 40% vlan 30 and 40 and guest at 10% vlan 60 Incoming policy:set...
View ArticleEdgeMAX - Add access control list (ACL)
Hi I am a retired Cisco SE working for my retirement community to build a secure wired/wireless network.I want to add a access list that seems simple but not sure of the terminology in the ER-8 Admin...
View ArticleTrouble upgrading on a new EdgeRouter ERPoe5..
Wasn't working via GUI, did some forum sleuthing and came across the CLI commands and tried that a few times. I'm trying to go straight from v1.2 to v1.8 I assume that's ok? Incidentally, I can't...
View ArticleBGP over IPSec - BGP routes inactive?
One of my sites is using IPSec to grab BGP routes... as well as doing WAN failover. IPSec is working correctly, BGP routes get picked up fine, but the sites are inaccessible. The BGP routes display as...
View ArticleERL 1.8.5 Site to Site VPN Help
Hello I am trying to finish up an install with a pair of ERL-3 at a customers two sites. Both sites unfortunately sit behind ISP provided routers, one an ActionTec DSL Modem/'Router and one a...
View ArticleIPSec Site to Site VPN with ERL to ERL not stable even with v1.85
I've got a client with a pair of EdgeRouter Lites and they're having issues with a site-to-site IPSec VPN - the tunnel will drop and then not reestablish itself. We've been through a fiar bit of...
View Articleblocking specific youtube videos
hiCan we block specific pages from a site with the edgerouter?I really REALLY want to block specific channels &/or videos from youtube but I cannot find a way to do it.. is this possible with...
View ArticleClik here to view.
Accept IPSec VPNs from specific source IPs to LOCAL, yet NAT to INSIDE on...
It's taken me awhile to figure out why NATting GRE wasn't working. Then I remembered: I have IPSec VPNs running - something that uses GRE in my VTI configs! So I am wondering: can I have certain GRE...
View ArticleConnect ER-Pro to Switch via SFP+
I currently have my cable modem connected to eth0, LAN (UniFi 48-port Switch) connected to eth1, AT&T MicroCell to eth2, and ADT Pulse system to eth3. I would like to connect my UniFi switch to the...
View ArticleFirewall Issues with DPI?
I just went through the whole trying to block Youtube, end up blocking Google services, debacle. Golly was that fun. Anyway, I'm a complete newb at all this, but after removing the Youtube rule from my...
View ArticleEdgerouter ERX Crashes when Running Speed Test
I've been using my ER-X for the last few months with no problems. It's a fairly simple conifguration with no offload, no QOS, and no DPI enabled. I recently upgraded to 1.8.5 and was checking my ISP...
View ArticleClik here to view.
Note to self RE: DHCP server
Please do not laugh, I wake up this morning and my computer has no connection. Immediately I panic thinking "the router took a dump" then immediately I think "Oh no, my servers" I run some...
View Article